Kaspersky Threats — La page que vous recherchez est introuvable.<br>Mais vous pouvez consulter les descriptions de nos dernières vulnérabilités et menaces.

Description

Multiple vulnerabilities were found in Mozilla Thunderbird Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, spoof user interface.

Below is a complete list of vulnerabilities:

Use-after-free vulnerability in the Audio/Video component can be exploited to cause denial of service or execute arbitrary code.
Mitigation bypass vulnerability in the DOM: Security component can be exploited to bypass security restrictions.
Incorrect boundary conditions vulnerability in the Graphics: WebGPU component can be exploited to cause denial of service.
Sandbox escape due to incorrect boundary conditions vulnerability in the Graphics: WebGPU component can be exploited to cause denial of service.
Race condition vulnerability in the Graphics component can be exploited to cause denial of service.
Memory safety vulnerability in Firefox can be exploited to execute arbitrary code.
Mitigation bypass vulnerability in the DOM: Core & HTML component can be exploited to bypass security restrictions.
Same-origin policy bypass vulnerability in the DOM: Workers component can be exploited to bypass security restrictions.
JIT miscompilation vulnerability in the JavaScript Engine: JIT component can be exploited to cause denial of service.
Spoofing vulnerability in Firefox can be exploited to spoof user interface.
Same-origin policy bypass vulnerability in the DOM: Notifications component can be exploited to bypass security restrictions.
Incorrect boundary conditions vulnerability in the JavaScript: WebAssembly component can be exploited to cause denial of service.
Use-after-free vulnerability in the WebRTC: Audio/Video component can be exploited to cause denial of service or execute arbitrary code.

Fiches de renseignement originales

MFSA2025-90

Exploitation

Public exploits exist for this vulnerability.

Produits associés

Mozilla-Thunderbird

Liste CVE

CVE-2025-13012
critical
CVE-2025-13013
high
CVE-2025-13014
critical
CVE-2025-13015
warning
CVE-2025-13016
critical
CVE-2025-13017
critical
CVE-2025-13018
critical
CVE-2025-13019
critical
CVE-2025-13020
critical
CVE-2025-13021
critical
CVE-2025-13022
critical
CVE-2025-13023
critical
CVE-2025-13024
critical
CVE-2025-13025
critical
CVE-2025-13026
critical
CVE-2025-13027
critical

En savoir plus

Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com

Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !